Information Technology Services: Alerts Archive

ALARM Group ALERTclick for a description of ALARM, The Computing Alert System
Alert Number:  alarm_alert_050405-01.html
Alert Date:  05/04/05
Alert Title:  Apple releases Mac OS X Security Update for May
Update-to:  none
OS/Platform/Application:  Mac OS X v10.3.9 and Mac OS X Server v10.3.9 (and earlier)
Category:  ALERT
Severity:  MEDIUM
Attention:  Mac OS X System Administrators, Desktop Support Personnel

Summary:  On May 3, Apple released a Security update for v10.3.9 of its OS X and OS X software. This update addresses 20 vulnerabilities related to several packages (Apache, AppKit, AppleScript, Bluetooth, Directory Services, Finder, Foundation, Help Viewer, LDAP, libXpm, lukemftpd, NetInfo, Server Admin, Sudo, Terminal, and VPN) several of which allow for remote code execution, unprivileged user access, etc.

Recommended Actions:  Mac OS X system managers and support personnel are encouraged to read the security update and (if appropriate) test and apply the patches immediately as per the instructions provided by the vendor.

ITS Actions:  At this time, ITS is taking no specific additional actions to address this software update.

Resources:
Security Update 2005-005:
iDefense Article on VPN issue:
iDefense Article on NetInfo issue:

University at Albany homepage